|
|
|
|
|
|
by urlgrey
3001 days ago
|
|
|
The breach notice indicates that hashed passwords were compromised but doesn't mention whether a salt was used when computing the hashes. Use of a salt makes all the difference, guarding against the use of rainbow tables to look up precomputed hashes of common passwords. |
|
|
If they're using bcrypt, then they're using salts since salts are built in to bcrypt.